Age | Commit message (Collapse) | Author | |
---|---|---|---|
2019-02-11 | Testsuite: munge GnuTLS and OpenSSL ciphersuite strings to be more similar | Jeremy Harris | |
(cherry picked from commit 25d5d9f98ebb30acc8b269c6594f4bc1e1abe654) | |||
2017-11-09 | Testsuite: another go at munging cipher-suite strings | Jeremy Harris | |
2017-11-09 | Testsuite: another go at munging cipher-suite strings | Jeremy Harris | |
2017-11-07 | TLS: support multiple certificate files in server. Bug 2092 | Jeremy Harris | |
2016-12-03 | Testsuite: OpenSSL info output during conn changes going to 1.1; give up ↵ | Jeremy Harris | |
trying to track changes | |||
2015-08-06 | Dup GnuTLS test to OpenSSL | Jeremy Harris | |
2014-09-28 | More testsuite variance between OpenSSL library versions | Jeremy Harris | |
2014-08-13 | Testsuite - Squashed commit of the following: | Jeremy Harris | |
commit 7566c531c43298510e080eb8a7ed7cf767f9476b Author: Jeremy Harris <jgh146exb@wizmail.org> Date: Wed Aug 13 16:20:38 2014 +0100 Assorted OpenSSL cases fail on different library versions. Discard stdout info to hide this. commit 3d389bc6a5ba0943f1b451fa7a8f2e3246de0bb1 Author: Jeremy Harris <jgh146exb@wizmail.org> Date: Wed Aug 13 14:05:19 2014 +0100 Case 0563 was broken when the GECOS field had spaces. Accept quoted ones in stderr. commit d4333083f230702c8be45650dc48b6eb65a162eb Author: Jeremy Harris <jgh146exb@wizmail.org> Date: Mon Aug 11 18:30:49 2014 +0100 Case 0601 was unreliable; perl racing with exim for output. Quieten exim. | |||
2013-03-25 | OCSP-stapling enhancement and testing. | Jeremy Harris | |
Server: Honor environment variable as well as running_in_test_harness in permitting bogus staplings Update server tests Add "-ocsp" option to client-ssl. Server side: add verification of stapled status. First cut server-mode ocsp testing. Fix some uninitialized ocsp-related data. Client (new): Verify stapling using only the chain that verified the server cert, not any acceptable chain. Add check for multiple responses in a stapling, which is not handled Refuse verification on expired and revoking staplings. Handle OCSP client refusal on lack of stapling from server. More fixing in client OCSP: use the server cert signing chain to verify the OCSP info. Add transport hosts_require_ocsp option. Log stapling responses. Start on tests for client-side. Testing support: Add CRL generation code and documentation update Initial CA & certificate set for testing. BUGFIX: Once a single OCSP response has been extracted the validation routine return code is no longer about the structure, but the actual returned OCSP status. |